Re: [sidr] revision to draft-ietf-sidr-roa-validation

To: sidr at ietf.org
Subject: Re: [sidr] revision to draft-ietf-sidr-roa-validation
From: Rob Austein <sra at isc.org>
Date: Mon, 03 Aug 2009 17:25:27 -0400
Delivered-to: sidr at core3.amsl.com
In-reply-to: <C69C8EE8.5B6%terry.manderson at icann.org>
List-archive: <http://www.ietf.org/mail-archive/web/sidr>
List-help: <mailto:sidr-request@ietf.org?subject=help>
List-id: Secure Interdomain Routing <sidr.ietf.org>
List-post: <mailto:sidr@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
References: <FB007FC8-CFD4-4674-9BFE-0A7B593C0600 at apnic.net> <C69C8EE8.5B6%terry.manderson at icann.org>
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

At Sun, 2 Aug 2009 19:56:08 -0700, Terry Manderson wrote:
> 
> It is truly a regrettable situation that the workgroup has been
> lulled into this position.

Kindly tone down the rhetoric.

> A ROA that has an implicit deny creates a major break scenario since
> the RPKI system will be in partial deployment for many years, - the
> resulting requirement is that every LIR's customers MUST participate
> in RPKI else the issuance of the LIR's ROA will invalidate all
> customer announcements in the examples provided by Geoff.

No, the LIR just has to issue ROAs for any of its customers that are
unwilling or unable to generate their own.  The LIR has to know what
resources each of its children has and which of its children are
RPKI-capable in any case, the rest is a small matter of programming.

This has been covered on the mailing list and in presentations to the
WG: see, eg, Randy's slides from the Stockholm meeting just last week.

Follow-Ups:
- Re: [sidr] revision to draft-ietf-sidr-roa-validation
  - From: Stephen Kent
- Re: [sidr] revision to draft-ietf-sidr-roa-validation
  - From: Terry Manderson

References:
- Re: [sidr] revision to draft-ietf-sidr-roa-validation
  - From: George Michaelson
- Re: [sidr] revision to draft-ietf-sidr-roa-validation
  - From: Terry Manderson

Prev by Date: Re: [sidr] revision to draft-ietf-sidr-roa-validation
Next by Date: Re: [sidr] revision to draft-ietf-sidr-roa-validation
Previous by thread: Re: [sidr] revision to draft-ietf-sidr-roa-validation
Next by thread: Re: [sidr] revision to draft-ietf-sidr-roa-validation
Index(es):
- Date
- Thread

Re: [sidr] revision to draft-ietf-sidr-roa-validation

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.